WordPress Hunk Companion Plugin Flaw Exploited to Silently Install Vulnerable Plugins

Malicious actors are exploiting a critical vulnerability in the Hunk Companion plugin for WordPress to install other vulnerable plugins that could open the door to a variety of attacks. The flaw, tracked as CVE-2024-11972 (CVSS score: 9.8), affects all versions of the plugin prior to 1.9.0. The plugin has over 10,000 active installations. "This flaw poses a significant security risk, as it

Dec 15, 2024 - 11:10

0 2

WordPress Hunk Companion Plugin Flaw Exploited to Silently Install Vulnerable Plugins

Malicious actors are exploiting a critical vulnerability in the Hunk Companion plugin for WordPress to install other vulnerable plugins that could open the door to a variety of attacks. The flaw, tracked as CVE-2024-11972 (CVSS score: 9.8), affects all versions of the plugin prior to 1.9.0. The plugin has over 10,000 active installations. "This flaw poses a significant security risk, as it

SaaS Budget Planning Guide for IT Professionals

What's Your Reaction?

Dislike

Love

Funny

Angry

Sad

Wow

5 BCDR Oversights That Leave You Exposed to Ransomware

Nov 15, 2024 0 2

CISA Warns of Active Exploitation in SolarWinds Help De...

Oct 16, 2024 0 7

Malware Campaign Uses Ethereum Smart Contracts to Contr...

Nov 5, 2024 0 2

Critical Veeam Vulnerability Exploited to Spread Akira ...

Oct 16, 2024 0 1

THN Cybersecurity Recap: Top Threats, Tools and Trends ...

Oct 16, 2024 0 2

Critical OpenWrt Vulnerability Exposes Devices to Malic...

Dec 15, 2024 0 3

Comments

Ce site utilise des cookies pour améliorer votre expérience de navigation. En continuant à utiliser ce site, vous consentez à l'utilisation de cookies. Veuillez consulter notre politique de confidentialité pour plus d'informations sur la façon dont nous traitons vos données.

Heroes actor Milo Ventimiglia loses home in f...

Mel Gibson says his home burned down in LA fires

Price of resale tickets to be capped under pl...

Ex-Strictly musical director Laurie Holloway ...

Elton John's hits album finally goes to numbe...

From AI assistants to holographic displays, a...

Striking Swedish workers impede EV infrastruc...

Google charts new path to artificial general ...

Artificial intelligence poses new problems fo...

Blu-ray movie reviews: 'Conclave' and 'Saturd...

Ivanti Flaw CVE-2025-0282 Actively Exploited,...

MirrorFace Leverages ANEL and NOOPDOOR in Mul...

Webinar: Learn How to Stop Encrypted Attacks ...

Product Walkthrough: How Reco Discovers Shado...

New Banshee Stealer Variant Bypasses Antiviru...

WordPress Hunk Companion Plugin Flaw Exploited to Silently Install Vulnerable Plugins

SaaS Budget Planning Guide for IT Professionals

Europol Dismantles 27 DDoS Attack Platforms Across 15 Nations; Admins Arrested

What's Your Reaction?

Recommended Posts

Popular Tags

Most Viewed Posts

May 21, 2024 Israel-Hamas war, Iran president death news

Israeli Officials Embrace Trump Victory, Despite His Un...

Trump win ignites crypto frenzy that sends bitcoin to a...

WordPress Hunk Companion Plugin Flaw Exploited to Silently Install Vulnerable Plugins

What's Your Reaction?

Related Posts

Popular Posts

Recommended Posts

Popular Tags